cbcvebase.
CVE-2010-0138
published 2010-01-21

CVE-2010-0138: Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution…

PriorityP351critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
8.48%
94.3th percentile
Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote attackers to execute arbitrary code via a malformed getProcessName CORBA General Inter-ORB Protocol (GIOP) request, related to a "third-party component," aka Bug ID CSCsv62350.

Affected

3 ranges
VendorProductVersion rangeFixed in
ciscociscoworks_internetwork_performance_monitor<= 2.6
ciscociscoworks_internetwork_performance_monitor
ciscociscoworks_internetwork_performance_monitor

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco10.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.